Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
831
Views
0
Helpful
1
Replies

PIX not NATing

collinss
Level 1
Level 1

‎07-03-2002 07:12 AM - edited ‎02-20-2020 10:08 PM

I am trying to get my PIX to NAT addresses from a DMZ interface out the outside interface. If I use a block of addresses from the subnet of my outside interface it will not NAT them. Here is my pertinent config info:

ip address outside 10.1.116.2 255.255.255.0

global (outside) 1000 10.1.116.3-10.1.116.254

nat (VPN_DMZ) 1000 0.0.0.0 0.0.0.0 0 0

I am running version 6.2(2). Can anyone see the problem with this?

0 Helpful
1 Reply 1

alexis.fidalgo
Level 1
Level 1

‎07-03-2002 12:00 PM

I dont see any problem, only and advice, specify an IP to do the PAT is a good option in this cases

try with

nat (VPN_DMZ) 1000 0 0

global (outside) 1000 10.1.1.116.3-10.1.116.253

global (outside) 1000 10.1.116.254

clear xlate

then try again, using show xlate to check the translates

to debug use logging on , then logg mon 7 and see if the pix is translating or are sending messages related to the translation.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card